Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/775/gh_Gr-rwGvomblBdmW7h18XhDIU.roa
File: gh_Gr-rwGvomblBdmW7h18XhDIU.roa (raw, json)
Hash identifier: byqVHL9qRDqh3v6GrB4itaVao258rA/9nqaco8CmrXI=
Subject key identifier: 82:1F:C6:AF:EA:F0:1A:FA:26:6E:50:5D:99:6E:E1:D7:C5:E1:0C:85
Certificate issuer: /CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050
Certificate serial: 06
Authority key identifier: CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/gh_Gr-rwGvomblBdmW7h18XhDIU.roa
Signing time: Tue 05 Sep 2023 06:06:43 +0000
ROA not before: Tue 05 Sep 2023 06:06:43 +0000
ROA not after: Wed 04 Sep 2024 05:32:22 +0000
asID: 59078
IP address blocks: 2402:e7c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 21 Aug 2024 05:46:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050
Validity
Not Before: Sep 5 06:06:43 2023 GMT
Not After : Sep 4 05:32:22 2024 GMT
Subject: CN=821FC6AFEAF01AFA266E505D996EE1D7C5E10C85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a1:22:57:5d:3c:8a:12:6c:af:8d:bf:62:d6:
96:59:46:73:c9:a8:51:b2:13:5a:26:e0:a8:6d:a3:
19:66:3e:bc:05:c8:00:64:16:98:18:ab:0c:d2:c9:
b8:1c:05:27:bf:b6:11:e7:c2:10:a9:30:08:e3:f7:
71:c5:01:ac:50:08:92:01:b9:a8:fc:d0:bd:93:98:
ae:b7:cc:9e:c9:f6:a7:6d:2f:15:3d:c4:88:9e:4d:
03:a4:95:94:5e:50:9b:de:b1:b7:76:25:40:69:b8:
27:0e:ee:d7:de:c6:52:1f:67:19:f7:89:f9:e0:13:
10:82:d0:c8:72:35:cc:4f:82:02:97:a0:9a:91:26:
71:c3:bd:56:d8:c9:d8:db:12:c1:b6:5e:51:19:33:
b1:69:35:0d:ac:ee:10:c3:8e:6e:96:e5:94:49:ff:
a4:a4:8a:d9:ef:d1:f4:17:8a:c6:56:d6:14:25:45:
a8:d9:93:4e:0a:08:93:dc:9c:93:35:78:50:57:df:
f4:b9:d6:3b:b9:3d:5a:c5:a8:c1:bf:b1:20:30:3a:
46:c5:c0:f9:02:6a:9d:0a:2e:f6:0e:b5:30:15:ea:
cb:5f:5a:40:0a:03:9e:ff:0f:0e:08:db:fd:64:ce:
ad:4d:95:79:cc:e9:ef:92:18:f9:0d:05:81:cb:56:
75:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1F:C6:AF:EA:F0:1A:FA:26:6E:50:5D:99:6E:E1:D7:C5:E1:0C:85
X509v3 Authority Key Identifier:
keyid:CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/gh_Gr-rwGvomblBdmW7h18XhDIU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:e7c0::/32
Signature Algorithm: sha256WithRSAEncryption
8b:36:f8:eb:e0:b8:68:fe:d5:5c:ea:67:fa:77:f3:7d:4a:f2:
ed:5f:7f:0b:43:cb:7b:1c:0c:ad:6d:e4:6a:11:97:a1:93:66:
d0:a9:f2:d5:a6:c0:14:5a:11:95:29:6e:22:1f:ee:0d:9b:2c:
ff:2b:e9:ba:6e:cd:3f:81:51:6b:34:ae:29:8a:b6:b9:2c:26:
b6:18:4b:9e:5b:fb:ec:cf:6b:e8:bc:9d:52:76:fe:e7:e2:51:
e1:51:25:20:e2:56:c0:c5:b2:ff:5d:4b:f4:a7:e9:04:d1:fa:
85:13:e5:23:da:9a:d8:a0:7b:18:d7:22:96:03:cc:6c:b1:b3:
84:f6:eb:7d:fd:85:39:c9:ec:e8:cc:6a:76:11:d9:68:61:08:
92:ee:8d:f0:70:37:33:f0:e0:43:b0:1a:7b:c5:ee:2b:75:54:
8d:ea:d2:65:2b:c1:c4:22:a6:ef:50:27:93:14:33:f6:7e:e0:
d4:ff:ac:79:5f:8a:ef:27:c6:c2:8e:c6:37:27:45:df:31:9d:
be:21:75:44:51:3c:58:94:af:d6:f8:8d:43:0b:d7:c5:80:7a:
8f:23:b7:fb:21:0a:51:44:a7:91:75:66:16:d1:aa:ec:1f:33:
a4:39:0c:41:8e:46:32:bb:0e:47:10:f1:9a:f4:07:3c:7d:b3:
75:6c:41:69
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDRDY1
RERGRkNBNDkwRjY5NUUxMkYzQTUzRUVCQUZGMEVEQTc3MDUwMB4XDTIzMDkwNTA2
MDY0M1oXDTI0MDkwNDA1MzIyMlowMzExMC8GA1UEAxMoODIxRkM2QUZFQUYwMUFG
QTI2NkU1MDVEOTk2RUUxRDdDNUUxMEM4NTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAM2hIlddPIoSbK+Nv2LWlllGc8moUbITWibgqG2jGWY+vAXIAGQW
mBirDNLJuBwFJ7+2EefCEKkwCOP3ccUBrFAIkgG5qPzQvZOYrrfMnsn2p20vFT3E
iJ5NA6SVlF5Qm96xt3YlQGm4Jw7u197GUh9nGfeJ+eATEILQyHI1zE+CApegmpEm
ccO9VtjJ2NsSwbZeURkzsWk1DazuEMOObpbllEn/pKSK2e/R9BeKxlbWFCVFqNmT
TgoIk9yckzV4UFff9LnWO7k9WsWowb+xIDA6RsXA+QJqnQou9g61MBXqy19aQAoD
nv8PDgjb/WTOrU2Veczp75IY+Q0FgctWdYsCAwEAAaOCAfIwggHuMB0GA1UdDgQW
BBSCH8av6vAa+iZuUF2ZbuHXxeEMhTAfBgNVHSMEGDAWgBTNZd3/ykkPaV4S86U+
66/w7adwUDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83NzUv
eldYZF84cEpEMmxlRXZPbFB1dXY4TzJuY0ZBLmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC96V1hkXzhwSkQybGVFdk9sUHV1djhPMm5jRkEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83NzUvZ2hfR3ItcndHdm9tYmxC
ZG1XN2gxOFhoRElVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj
LmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQC58AwDQYJKoZIhvcNAQELBQADggEBAIs2+OvguGj+1VzqZ/p3831K8u1ffwtD
y3scDK1t5GoRl6GTZtCp8tWmwBRaEZUpbiIf7g2bLP8r6bpuzT+BUWs0rimKtrks
JrYYS55b++zPa+i8nVJ2/ufiUeFRJSDiVsDFsv9dS/Sn6QTR+oUT5SPamtigexjX
IpYDzGyxs4T26339hTnJ7OjManYR2WhhCJLujfBwNzPw4EOwGnvF7it1VI3q0mUr
wcQipu9QJ5MUM/Z+4NT/rHlfiu8nxsKOxjcnRd8xnb4hdURRPFiUr9b4jUML18WA
eo8jt/shClFEp5F1ZhbRquwfM6Q5DEGORjK7DkcQ8Zr0Bzx9s3VsQWk=
-----END CERTIFICATE-----
Generated at Wed Aug 21 08:03:27 2024 by rpki-client on console-fra.rpki-client.org